CVE-2021-32518

Summary

A vulnerability in share_link in QSAN Storage Manager allows remote attackers to create a symbolic link then access arbitrary files. The referred vulnerability has been solved with the updated version of QSAN Storage Manager v3.3.3.

Affected Software

VendorProductVersion RangeStatus
QSANStorage Managerunspecified <= 3.3.1affected

Weaknesses

  • CWE-61: CWE-61 UNIX Symbolic Link (Symlink) Following

ADP Enrichment

CVE Program Container

Additional References

References